Staff Product Security Engineer

Tines

Tines

Product
United States · Canada · Mexico
Posted on Sep 12, 2024

Founded in 2018 in Dublin, Tines is a smart, secure workflow platform designed to automate any manual task, regardless of complexity. By automating workflows, Tines empowers frontline teams to reduce monotonous, manual work and free up valuable time and resources.

Tines is an integrator across your entire stack - if it offers an API, Tines connects with it. Having firmly established Tines as the de-facto automation platform for cybersecurity teams, we’re expanding horizontally to IT, Product, Engineering, and Infrastructure teams. Tines was built for everyone, delivering transformative and innovative enterprise software to industry leaders like Canva, Intercom, Databricks, Mars and Reddit.

We’re excited about what we’re doing and what’s to come, and we’re looking for others who can lead by our values of Simplicity, Speed, and Soundness. Because Tines is about delivering exceptional customer experiences, while creating a company culture that nurtures individual curiosity, growth, and integrity.

We are looking for a Staff Security Engineer passionate about security and automation to help grow and mature the security program at Tines. This role will be focused on growing and maturing our product security program. You’ll have the opportunity to make your mark and build new projects from the ground up.

This is a key role reporting to our Head of IT Operations & Information Security and can be based remotely in the United States. Applicant must be a U.S. Person defined as a U.S. Citizen or active Green Card holder.

What you’ll be doing:

  • Align with our product and engineering teams to support security projects and initiatives across our entire stack.
  • Stay apprised of security trends and incidents to prevent similar occurrences by reviewing and implementing security controls based on lessons learned.
  • Perform security reviews and threat modeling to ensure high security standards for our product.
  • Scale our product detection and response capabilities across our stack.
  • Validate bug bounty and external security reports for recommended action.
  • Track and drive vulnerability remediation across our code base and cloud infrastructure.
  • Assist with security training and ensure our employees are up to date on the latest security threats.
  • Act as an escalation point for automated detections that are raised for human review.
  • Proactively hunt for threats across our environment.
  • Perform on-call duties, including incident commander responsibilities during security incidents.
  • Automate as much of this as possible!

What you bring with you:

  • 12+ years experience in a security role on a high demand security team, preferably in an application or product security role.
  • Excellent written and verbal English skills.
  • Deep understanding of application security and cloud fundamentals, including OWASP, Cloudformation, CI/CD, SAST/DAST, IDE integrations, and more.
  • Familiarity with securing container technologies like Docker or Kubernetes.
  • Background of automating security tasks with SOAR tools and/or languages like Ruby/Python/Go.
  • Experience working on an on-call rotation in a fast-paced environment.
  • Excellent analytical & time management skills with the ability to work autonomously or collaboratively with peers.

At Tines, we’re all about trying new things and taking the leap. If you’re second-guessing your application, we hope you’ll trust your gut and take the leap too! Applying for a new job isn’t always easy, especially if you’re thinking of a career pivot – but we’re big believers in learning and growth here at Tines, so you’ve nothing to worry about. A variety of experience, perspectives, and voices makes us the company we are. We’d love to hear from you.

Tines provides equal employment opportunities to all employees and applicants for employment without regard to sex, race, colour, ethnic or social origin, genetic features, language, religion or belief, political or any other opinion, membership of a national minority, property, birth, disability, age or sexual orientation.